How does Identity Governance support access certification?

Identity Governance includes comprehensive, flexible access certification capabilities. Administrators can create, initiate, and fully manage access certification campaigns for a wide range of scenarios including periodic supervisor reviews, high risk application reviews, privileged and orphan account reviews, etc. Owners can be assigned to monitor running campaigns in order to ensure they are proceeding as expected. Access certification campaigns can be created using out-of-the-box templates or manually by specifying selection criteria for the users, accounts, permissions or applications to include. Additionally, campaigns can be created dynamically based on risk, privileged access or other factors such as inactivity and can be initiated on an ad-hoc basis, scheduled to run periodically, or triggered by external events (e.g. user moves to a new job role triggers a micro-certification). Reviewers can be provided with key identity analytics to help them in decision making.